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A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE [31 MONTH(S) OR THIRTY (30) DAYS, 

WHICHEVER IS LONGER. FROM THE MAILING DATE OF THIS COMMUNICATION. 

- Extensions of tinfie may be available under the provisions of 37 CFR 1 . 1 36(a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 
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I) 13 Responsive to communication(s) filed on 09 August 2007 , 
2a)IEI This action is FINAL. 2b)l3 This action is non-final. 

3) n Since this application is in condition for allowance except for formal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quayle, 1935 CD. 11, 453 O.G, 213. 
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Detailed Office Action 



1 . This action is in response to the amendment filed on August 9, 2007. 

2. Claims 1, 3-10, 12-32, 34-38 are pending. 

Claim Rejections - 35 USC §102 

3. The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that form the 

basis for the rejections under this section made in this Office action: 
A person shall be entitled to a patent unless - 

(e) the invention was described in a patent granted on an application for patent by another filed in the United 
States before the invention thereof by the applicant for patent, or on an international application by another who 
has fulfilled the requirements of paragraphs ( 1 ), (2), and (4) of section 371(c) of this title before the invention 
thereof by the applicant for patent. 

The changes made to 35 U.S.C. 102(e) by the American Inventors Protection Act of 1999 
(AIPA) and the Intellectual Property and High Technology Technical Amendments Act of 2002 
do not apply when the reference is a U.S. patent resulting directly or indirectly from an 



international application filed before November 29, 2000. Therefore, the prior art date of the 
reference is determined under 35 U.S.C. 102(e) prior to the amendment by the AIPA (pre-AIPA 
35 U.S.C. 102(e)). 



4. Claims 1, 3-10, 12-32, 34-38 are rejected under 35 U.S.C, 102(e) as being anticipated 
by Noel Abela, Publication No. US 2003/0177356 Al (herein referred to as "Abela"). 
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5. As to claim 1 , Abela discloses the invention as claimed, Abeia discloses including a 
system for identifying principals within a computing environment, the system 
comprising: a plurality of principal objects [see page 8, paragraph 0107] (individual 
or groups, country, organization), wherein each principal object corresponds to a 
specific principal authenticated to perform a digital action within the computing 
environment [see paragraph 0105] (successfully authenticated himself and needs to 
log into your web site) and wherein each principal object is operable for use by a 
computer process within the computing environment to associate a plurality of 
resource objects [See paragraph 0074] (every individual, organization, or other entity 
member is represented by a single record in the Unique ID hosted by his or her or its 
country of origin) with the specific principal corresponding to the principal object 
[see paragraph 0076] (Unique ID field set called personal can have fields like name, 
address, sex, telephone mapped to it); and a plurality of identity claims, wherein each 
identity claim uniquely identifies the specific principal corresponding to each specific 
principal object, and wherein at least one of the plurality of principal objects 
comprises two or more identity claims each uniquely identifying the specific principal 
corresponding to the at least one principal object (it is inherent because every identity 
claims have to have a uniquely identifies, for example everyone have to have a SSN 
cited in specification page J); a plurality of identity references, wherein each of the 
plurality of identity references is associated with a resource object within the 
computing environment, and wherein each of the plurality of identity references 
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identify the associated resource object as being associated with a specific principal 
based on a link assertion within the identity reference to a specific identity claim [See 
paragraph 0074] {every individual organization, or other entity member is 
represented by a single record in the Unique ID hosted by his or her or its country of 
origin) 

6. As to claim 3, Abela discloses the invention as claimed, wherein each of the plurality 
of identity claims comprises a type assertion and a value assertion that collectively 
identify the specific principal corresponding to the principal object to which each of 
the identity claims are associated [see paragraph 0076] {Unique ID field set called 
personal can have fields like name, address, sex, telephone mapped to it). 

7. As to claim 4, Abela discloses the invention as claimed, wherein the link assertion 
within each of the plurality of the identity references comprises the type assertion and 
the value assertion specified in the specific identity claim to which each identity 
reference is linked [see paragraph 0076]. 

8. As to claim 5, Abela discloses the invention as claimed, wherein a first type assertion 
for a first identity claim associated with a first principal object indicates that the value 
assertion in the first identity claim comprises an electronic mail address uniquely 
associated with a first principal corresponding to the first principal object [See 
paragraph 0074] {every individual, organization, or other entity member is 
represented by a single record in the Unique ID hosted by his or her or its country of 
origin). 



Application/Control Number: 10/693.021 Page 5 

Art Unit: 2144 

9. As to claim 6, Abela discloses the invention as claimed, wherein the first identity 
claim further comprises a start time reference assertion indicating a point in time 
when the email address was initially associated with the first principal [see paragraph 
0082]. 

10. As to claim 7, Abela discloses the invention as claimed, wherein the first identity 
claim further comprises an end time reference assertion indicating a point in time 
when the association between the email address and the first principal lapses [See 
paragraph 000091] {hotmail, yahoo, and netscape mail), 

11. As to claim 8, Abela discloses the invention as claimed, wherein a second type 
assertion for a second identity claim associated with the first principal object indicates 
that the value assertion in the second identity claim comprises a telephone number 
uniquely associated with the first principal [See paragraph 0074] {every individual 
organization, or other entity member is represented by a single record in the Unique 
ID hosted by his or her or its country of origin), 

12. As to claim 9, Abela discloses the invention as claimed, wherein the computing 
environment is a distributed computing system, and wherein at least one identity 
reference is maintained on a computer system different than a computer system on 
which the identity claim linked to the identity reference is maintained [see paragraph 
0093]. 

13. As to claim 10, Abela discloses the invention substantially as claimed, Abela 
discloses including a system for identifying a first principal within a computing 
environment, wherein the first principal is authenticated to perform a digital action 



Application/Control Number: 10/693,021 Page 6 

Art Unit: 2144 

within the computing environment, the system comprising: a first principal object 
[see page 8, paragraph 0107] (individual or groups, country, organization) 
corresponding to the first principal, wherein the first principal object is operable for 
use by a computer process within the computing environment [see paragraph 0105] 
(successfully authenticated himself and needs to log into your web site) to associate at 
least one resource object with the first principal [see paragraph 0074] (every 
individual organization, or other entity member is represented by a single record in 
the Unique ID hosted by his or her or its country of origin); a plurality of identity 
claims, wherein each identity claim uniquely identifies the first principal, the first 
principal object including the plurality of identity claims such that the computer 
process may associate the at least one resource object with the first principal using 
any of the plurality of identity claims (// is inherent because every identity claims 
have to have a uniquely identifies, for example everyone have to have a SSN cited in 
specification page.l); a first identity reference associated with a first resource object 
within the computing environment, wherein the first identity reference identifies the 
first resource object as being associated with the first principal based on a first link 
assertion within the first identity reference to a first identity claim in the plurality of 
identity claims [see paragraph 0107]. 
14. As to claim 12, Abela discloses the invention as claimed, further comprising: a 
second identity reference associated with a second resource object within the 
computing environment, wherein the second identity reference identifies the second 
resource object as being associated with the first principal based on a second link 
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assertion within the second identity reference to the first identity claim [see paragraph 
0076] {personal can have name, sex, address). 

15. As to claim 13, Abela discloses the invention as claimed, wherein the first resource 
object represents a file associated with a first application program and the second 
resource object represents a file associated with a second application program [see 
fig.l]. 

16. As to claim 14, Abela discloses the invention as claimed, wherein the first application 
program is a word processing application program [see fig.l]. 

17. As to claim 15, Abela discloses the invention as claimed, wherein each of the 
plurality of identity claims comprises a type assertion and a value assertion that 
collectively specify the first principal, and wherein the first and second link assertions 
comprise the type assertion and the value assertion specified in the identity claim to 
which the first and the second identity references are linked [see paragraph 0072]. 

18. As to claim 1 6, Abela discloses the invenfion as claimed, wherein a first type 
assertion for the first identity claim indicates that the value assertion in the first 
identity claim comprises an electronic mail address uniquely associated with the first 
principal [see paragraph 0078]. 

19. As to claim 1 7, Abela discloses the invention as claimed, wherein the first identity 
claim fiirther comprises: a start time reference assertion indicating a point in time 
when the email address was initially associated with the first principal; and an end 
time reference assertion indicating a point in time when the association between the 
email address and the first principal lapses [see paragraph 0056]. 
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20. As to claim 1 8, discloses the invention as claimed, wherein the first principal is 
selected from the group consisting of an individual, an organization and a module 
within the computing environment [see fig. 1]. 

21. As to claim 19, Abela discloses the invention as claimed, wherein the computing 
. environment is a distributed computing system [see paragraph 0076]. 

22. As to claim 20, Abela discloses the invention as claimed, wherein the computing 
environment is a stand-alone computing system [see fig.l client system 114]. 

23. As to claim 21 , Abela discloses the invention substantially as claimed, Abela 
discloses including a computer readable medium having a data structure stored 
thereon for use in identifying a principal authenticated to perform a digital action 
within a computing environment [see paragraph 0105] {successfully authenticated 
himself and needs to log into your web site), the data structure comprising: a value 
assertion uniquely identifying the principal within a particular identification scheme 
[see paragraph 0076]; a type assertion indicating the particular identification scheme 
corresponding to the value assertion [see paragraph 0109]; and a time reference 
assertion specifying a time frame in which the principal is uniquely identified by the 
value assertion within the particular identification scheme [see paragraph 0091]. 

24. As to claim 22, Abela discloses the invention as claimed, wherein the data structure 
represents an identity claim that associates a principal object with the principal, 
wherein the principal object is operable for use by a computer process within the 
computing environment to associate at least one resource object with the principal 
[see paragraph 0082]. 
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25. As to claim 23, Abela discloses the invention as claimed, wherein the time reference 
comprises: a start time reference assertion indicating a point in time when the value 
assertion was initially associated with the principal; and an end time reference 
assertion indicating a point in time when the association between the value assertion 
and the principal lapses [see paragraph 0056]. 

26. As to claim 24, Abela discloses the invention as claimed, the data structure further 
comprising: a display assertion specifying the value assertion in a form recognizable 
to human users within the computing environment, wherein the computer process 
displays the display assertion to a user in response to a request by the user to view the 
association between the principal and the at least one resource object [see paragraph 
0076]. 

27. As to claim 25, Abela discloses the invention as claimed, wherein the principal is 
selected from the group consisting of an individual, an organization and a module 
within the computing environment [see paragraph 0058]. 

28. As to claim 26, Abela discloses the invention as claimed, wherein the type assertion 
indicates that the value assertion comprises an electronic mail address uniquely 
associated with the principal. 

29. As to claim 27, Abela discloses the invention as claimed, wherein the type assertion 
indicates that the value assertion comprises a telephone number uniquely associated 
with the principal [see paragraph 0082]. 

30. As to claim 28, Abela discloses the invention substantially as claimed, Abela 
discloses including a method for identifying a first principal authenticated to perform 
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a digital action within a computing environment, the method comprising: creating a 
principal object [see page 8, paragraph 0107] (individual or groups, country, 
organization) operable for use by a computer process within the computing 
environment to identify the first principal as being associated with a plurality of 
resource objects maintained within the computing environment [see paragraph 0105] 
(successfully authenticated himself and needs to log into your web site); associating 
with the principal object a first identity claim uniquely identifying the first principal 
within a particular identification scheme [see paragraph 0076], wherein unique 
identification of the first principal within the particular identification scheme is 
accomplished by assignment of unique identification strings to each of a plurality of 
principals [See paragraph 0074] (every individual organization, or other entity 
member is represented by a single record in the Unique ID hosted by his or her or its 
country of origin); receiving a plurality of resource objects associated with a plurality 
of application programs, wherein each of the plurality of resource objects are 
associated with an identity reference comprising a declaration that links each resource 
object to the principal object [see paragraph 0066]; and identifying within the 
computing environment each of the plurality of resource objects as being associated 
with the first principal based on the declaration links contained in the associated 
identity references, wherein the computer process utilizes identification of each of the 
plurality of resource objects to the first principal to perform at least one task in 
connection with each identified resource object [see paragraph 0105]. 
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31. As to claim 29, Abela discloses the invention as claimed, wherein the receiving act 
comprises: receiving a first resource object having associated therewith a first identity 
reference linked to the first identity claim based on a first declaration comprising a 
unique identification string assigned to the first principal, wherein the first resource 
object represents a first file associated with a first application program; and receiving 
a second resource object having associated therewith a second identity reference 
linked to the first identity claim based on a second declaration comprising the unique 
identification string assigned to the first principal, wherein the second resource object 
represents a second file associated with a second application program [see paragraph 
0056]. 

32. As to claim 30, Abela discloses the invention as claimed, wherein the identifying act 
comprises: identifying the first file and the second file as being associated with the 
first principal based on the linking of the first identity reference and the second 
identify reference to the first identity claim [see paragraph 0059] 

33. As to claim 3 1 , Abela discloses the invention as claimed, further comprising: 
associating with the principal object properties associated with the first principal, 
wherein the task performed by the computer process in response to the identifying act 
comprises an act of displaying a graphical representation of the properties associated 
with the first principal in conjunction with a graphical representation of at least one of 
the plurality of resources linked to the principal object [see paragraph 00S2](Unigue 
ID organization); creating a phantom principal object in response to receiving a 
resource object having a identity reference comprising a declaration that does not link 
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the resource object to the principal object, the declaration comprising an identification 
string uniquely identifying a second principal within the particular identification 
scheme, and wherein the phantom principal object is created to include the 
identification string assigned to the second principal; and saving the phantom 
principal object to a data store containing the principal object corresponding to the 
first principal [see paragraph 0076]. 

34. As to claim 32, Abela discloses the invention as claimed, further comprising: 
associating with the principal object properties associated with the first principal, 
wherein the task performed by the computer process in response to the identifying act 
comprises an act of authenticating access by the first principal to at least one of the 
plurality of resources linked to the principal object [see paragraph 0082]. 

35. As to claim 34, Abela discloses the invention as claimed, further comprising: 
receiving a second principal object, wherein the second principal object comprises a 
second identity claim that comprises the identification string assigned to the second 
principal; and in response to determining that the phantom principal object and the 
second principal both correspond to the. second principal, deleting the phantom 
principal object from the data store and saving to the data store the second principal 
object such that the second principal object is operable for use by the identifying act 
[see paragraph 0078]. 

36. As to claim 35, Abela discloses the invention as claimed, wherein the first identity 
claim is stored in the computing environment in a data store, the method further 
comprising: in response to receiving a second identity claim for storage into the data 
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store, determining whether the second identity claim and the first identity claim both 
specify an identical unique identification string; and in response to determining that 
both the first identity claim and the second identity claim specify the identical unique 
identification string, invoking a fault resolution process to determine a primary 
identity claim that is to be stored in the data store and available to the identifying act 
[see paragraph 0078]. 

37. As to claim 36, Abela discloses the invention as claimed, wherein the invoking act 
comprises: merging data stored in the second identity claim into the first identity 
claim [see paragraph 0076]. 

38. As to claim 37, Abela discloses the invention as claimed, wherein the invoking act 
comprises: deleting the first identity claim; and storing in the data store the second 
identity claim [see paragraph 0058]. 

39. As to claim 38, Abela discloses the invention as claimed, wherein a computer 
program product readable by a computer system and tangibly embodying a program 
of instructions executable by the computer system to perform the method of claim 28 
[see paragraph 0059]. 

Response to Arguments 

40. Applicants argue that Abela fails to discloses "identity reference within resource 
objects and identity claims within principal objects. In response to the applicants 
argument, the Patent examiner maintains the rejection because Abela disclose identity 
reference within resource objects and identity claims within principle objects as 
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shown in paragraph 0074 {every individual organization, or other entity member is 
represented by a single record in the Unique ID hosted by his or her or its country of 
origin) 

41. As well as Abela discloses all of the limitation of claims 10, and 21 and claim 28 as 
cited in previous action. 

42. Therefore, the Examiner asserts that cited prior arts teach or suggest the subject 
matter broadly recited in independent claims 1, 10, 21, 28 and 29. Claims 3-9, 12-20 
and 22-27, 30-32, and 34-38 are also rejected at least by the virtue of their 
dependency on independent claims and by other reasons set forth in the previous 
office action. 

43. Accordingly, claims 1, 3-10, 12-32, 34-38 are respectfully rejected. 

Conclusion 

44. THIS ACTION IS MADE FINAL. Applicant is reminded of the extension of 
time policy as set forth in 37 CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within TWO 
MONTHS of the mailing date of this final action and the advisory action is not mailed until after 
the end of the THREE-MONTH shortened statutory period, then the shortened statutory period 
will expire on the date the advisory action is mailed, and any extension fee pursuant to 37 
CFR LI 36(a) will be calculated from the mailing date of the advisory action. In no event, 
however, will the statutory period for reply expire later than SIX MONTHS from the mailing 
date of this final action. 
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45. Any inquiry concerning this communication or earlier communications from 
the examiner should be directed to Tammy T. Nguyen whose telephone number is 571-272- 
3929. The examiner can normally be reached on Monday - Friday 8:30 - 5:30. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, William Vaughn can be reached on 571-272-3922. The fax phone number for the 
organization where this application or proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for published 
applications may be obtained from either Private PAIR or Public PAIR. Status information for 
unpublished applications is available through Private PAIR only. For more information about 
the PAIR system, see http://pair-direct.uspto.gov. Should you have questions on access to the 
Private PAIR system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). 
If you would like assistance from a USPTO Customer Service Representative or access to the 
automated information system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 
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